The following job is no longer available:
Cyber Security Analyst
Cyber Security Analyst
Cyber Security Analyst
Posted 13 days ago
- London, Greater London
- Any
- External
- Expired - 3 months ago
As a Cyber Security Analyst, we are looking for someone to:
Act as first responder to security alerts.
Perform regular threat hunting across the organisation.
Continually develop, tune and refine SIEM alerts and user, endpoint and network behavioural models to improve threat detection.
Create and maintain security dashboards, reports and metrics.
Perform root cause analysis of security incidents and participate in post-incident reviews to provide practical recommendations for improving the organisation's threat detection and incident response capabilities and overall security posture.
Perform malware analysis and digital forensics where appropriate.
Identify, assess and track infrastructure and software vulnerabilities and escalate to the appropriate teams for remediation.
Identify opportunities for process automation and standardise threat detection and remediation procedures to facilitate SOAR implementation.
Provide recommendations to the cyber security engineers for security control improvements.
Develop scripts or tools to improve common activity efficiency.
Ensure skills and knowledge are maintained through attending conferences, training courses, certification, ingesting security research and threat reports and practising in lab environments.
Share knowledge with and cross-train other members of the cyber security team.
Qualifications
Essential
Relevant certifications such as CISSP, Security+, CySA+, GIAC etc.
Thorough understanding of adversarial tactics, techniques and procedures.
The ability to contextualise, categorise and prioritise security events, incidents and alerts.
Experience of threat hunting, intrusion detection, incident response, packet capture analysis and malware analysis.
Knowledge of infrastructure, cloud, virtualisation and network concepts and technologies, particularly in a Microsoft-centric environment.
Strong attention to detail with an analytical mindset in order to spot and investigate anomalous behaviour.
Experience with security tool sets (SIEM, EDR, NDR etc.)
Demonstrable passion and enthusiasm for security, including the ability to keep current with the latest threats, technologies and trends.
Excellent written and verbal communication skills, with the ability to communicate technical security issues to both non-security and non-technical stakeholders.
The ability to work closely and collaboratively with Cyber Security, IT and other teams as well as independently.
Desirable
Experience working within a regulated environment
Experience following change management and similar ITIL best practice
#J-18808-Ljbffr
Act as first responder to security alerts.
Perform regular threat hunting across the organisation.
Continually develop, tune and refine SIEM alerts and user, endpoint and network behavioural models to improve threat detection.
Create and maintain security dashboards, reports and metrics.
Perform root cause analysis of security incidents and participate in post-incident reviews to provide practical recommendations for improving the organisation's threat detection and incident response capabilities and overall security posture.
Perform malware analysis and digital forensics where appropriate.
Identify, assess and track infrastructure and software vulnerabilities and escalate to the appropriate teams for remediation.
Identify opportunities for process automation and standardise threat detection and remediation procedures to facilitate SOAR implementation.
Provide recommendations to the cyber security engineers for security control improvements.
Develop scripts or tools to improve common activity efficiency.
Ensure skills and knowledge are maintained through attending conferences, training courses, certification, ingesting security research and threat reports and practising in lab environments.
Share knowledge with and cross-train other members of the cyber security team.
Qualifications
Essential
Relevant certifications such as CISSP, Security+, CySA+, GIAC etc.
Thorough understanding of adversarial tactics, techniques and procedures.
The ability to contextualise, categorise and prioritise security events, incidents and alerts.
Experience of threat hunting, intrusion detection, incident response, packet capture analysis and malware analysis.
Knowledge of infrastructure, cloud, virtualisation and network concepts and technologies, particularly in a Microsoft-centric environment.
Strong attention to detail with an analytical mindset in order to spot and investigate anomalous behaviour.
Experience with security tool sets (SIEM, EDR, NDR etc.)
Demonstrable passion and enthusiasm for security, including the ability to keep current with the latest threats, technologies and trends.
Excellent written and verbal communication skills, with the ability to communicate technical security issues to both non-security and non-technical stakeholders.
The ability to work closely and collaboratively with Cyber Security, IT and other teams as well as independently.
Desirable
Experience working within a regulated environment
Experience following change management and similar ITIL best practice
#J-18808-Ljbffr
.webp "Apply4U | Sign Up")
.webp "Apply4U | Contact Us")
.webp "Apply4U | Sign up")
